Security Engineer — Application Security & Identity
R
Real ChemistryHealthcare Communications
Remote - USAFull-TimeMiddle
Salary60,000 - 80,000 USD per year
Apply NowOpens the employer's application page
Job Details
- Experience
- 5+ years (or 3–5+ in high-growth environments) in cloud security, 2 of which should be be focused application security
- Required Skills
- GitHubHIPAA
Requirements
- 5+ years (or 3–5+ in high-growth environments) in cloud security.
- 2+ years of experience focused on application security.
- Hands-on security experience with AWS IAM.
- Experience with SAML / OIDC federation.
- Hands-on experience with GitHub security tooling.
- Experience with threat modeling.
- Experience coordinating penetration testing.
- Familiarity with SOC 2, GDPR, and HIPAA-adjacent controls.
- In-depth understanding of the risk lifecycle.
- Ability to work in a hybrid environment with two days in-office for those within an hour of an office location.
Responsibilities
- Conduct security reviews of internally developed applications, including data flow validation and AI/LLM Data Loss Prevention (DLP).
- Co-lead production readiness reviews involving threat modeling, hardening validation, and compliance mapping.
- Define and enforce identity architecture for corporate (Entra ID) and workload (AWS IAM, GitHub OIDC) systems.
- Manage GitHub native security controls, including CodeQL, Dependabot, and secret scanning.
- Establish standards for security tooling such as SAST, SCA, container scanning, and Infrastructure as Code (IaC) policies.
- Define AWS security standards including IAM design, logging, and secrets management.
- Scope and coordinate third-party penetration testing and maintain audit logging maturity.
- Perform triage and risk classification for identified security issues.
- Partner with DevOps Engineering to ensure policy implementation within pipelines and infrastructure.
- Define AI security governance, including prompt data classification and human-in-the-loop requirements.
View Full Description & ApplyYou'll be redirected to the employer's site